Home/Product/icecast
Product

icecast

17 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2018-18820
< 2.4.4
A buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then an
8.1HIGH
 CVE-2015-3026
<= 2.4.1
Icecast before 2.4.2, when a stream_auth handler is defined for URL authentication, allows remote attackers to cause a denial of s
 CVE-2014-9091
<= 2.3.3
Icecast before 2.4.0 does not change the supplementary group privileges when <changeowner> is configured, which allows local users
 CVE-2014-9018
<= 2.4.0
Icecast before 2.4.1 transmits the output of the on-connect script, which might allow remote attackers to obtain sensitive informa
 CVE-2011-4612
<= 2.3.2
icecast before 2.3.3 allows remote attackers to inject control characters such as newlines into the error loc (error.log) via a cr
 CVE-2005-0838
all versions
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute
 CVE-2005-0837
all versions
IceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file wi
 CVE-2004-1561
all versions
Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a large nu
 CVE-2004-0781
all versions
Cross-site scripting (XSS) vulnerability in list.cgi in the Icecast internal web server (icecast-server) 1.3.12 and earlier allows
 CVE-2004-2027
all versions
Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a long Basic Authori
 CVE-2002-1982
all versions
Directory traversal vulnerability in the list_directory function in Icecast 1.3.12 allows remote attackers to determine if a direc
 CVE-2002-0177
all versions
Buffer overflows in icecast 1.3.11 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request from
 CVE-2001-0784
<= 1.310
Directory traversal vulnerability in Icecast 1.3.10 and earlier allows remote attackers to read arbitrary files via a modified ..
 CVE-2001-1083
all versions
Icecast 1.3.7, and other versions before 1.3.11 with HTTP server file streaming support enabled allows remote attackers to cause a
 CVE-2001-0197
<= 1.3.8_beta2
Format string vulnerability in print_client in icecast 1.3.8beta2 and earlier allows remote attackers to execute arbitrary command
 CVE-2001-1230
<= 1.3.10
Buffer overflows in Icecast before 1.3.10 allow remote attackers to cause a denial of service (crash) and execute arbitrary code.
 CVE-2001-1229
<= 1.3.9
Buffer overflows in (1) Icecast before 1.3.9 and (2) libshout before 1.0.4 allow remote attackers to cause a denial of service (cr
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns TAXII feed Data sources
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh